2019-03-20 17:46:36 +03:00
# Using the smartcard wallet
## Requirements
* A USB smartcard reader
* A keycard that supports the status app
2019-04-03 10:50:52 +03:00
* PCSCD version 4.3 running on your system **Only version 4.3 is currently supported**
2019-03-20 17:46:36 +03:00
2019-03-21 12:54:24 +03:00
## Preparing the smartcard
2023-10-11 11:29:10 +03:00
**WARNING: FOLLOWING THESE INSTRUCTIONS WILL DESTROY THE MASTER KEY ON YOUR CARD. ONLY PROCEED IF NO FUNDS ARE ASSOCIATED WITH THESE ACCOUNTS**
2019-04-03 10:50:52 +03:00
2019-04-10 11:51:45 +03:00
You can use status' [keycard-cli ](https://github.com/status-im/keycard-cli ) and you should get _at least_ version 2.1.1 of their [smartcard application ](https://github.com/status-im/status-keycard/releases/download/2.2.1/keycard_v2.2.1.cap )
2019-03-21 12:54:24 +03:00
You also need to make sure that the PCSC daemon is running on your system.
Then, you can install the application to the card by typing:
```
2019-04-10 11:51:45 +03:00
keycard install -a keycard_v2.2.1.cap & & keycard init
2019-03-21 12:54:24 +03:00
```
2019-04-10 11:51:45 +03:00
At the end of this process, you will be provided with a PIN, a PUK and a pairing password. Write them down, you'll need them shortly.
Start `geth` with the `console` command. You will notice the following warning:
```
2019-05-28 19:47:53 +03:00
WARN [04-09|16:58:38.898] Failed to open wallet url=keycard://044def09 err="smartcard: pairing password needed"
2019-04-10 11:51:45 +03:00
```
2019-05-28 19:47:53 +03:00
Write down the URL (`keycard://044def09` in this example). Then ask `geth` to open the wallet:
2019-03-21 12:54:24 +03:00
```
2021-01-26 18:43:12 +03:00
> personal.openWallet("keycard://044def09", "pairing password")
2019-03-21 12:54:24 +03:00
```
2021-01-26 18:43:12 +03:00
The pairing password has been generated during the card initialization process.
The process needs to be repeated once more with the PIN:
```
> personal.openWallet("keycard://044def09", "PIN number")
```
2019-04-10 11:51:45 +03:00
If everything goes well, you should see your new account when typing `personal` on the console:
2019-04-03 10:50:52 +03:00
```
2019-04-10 11:51:45 +03:00
> personal
2019-05-28 19:47:53 +03:00
WARN [04-09|17:02:07.330] Smartcard wallet account derivation failed url=keycard://044def09 err="Unexpected response status Cla=0x80, Ins=0xd1, Sw=0x6985"
2019-04-10 11:51:45 +03:00
{
listAccounts: [],
listWallets: [{
status: "Empty, waiting for initialization",
2019-05-28 19:47:53 +03:00
url: "keycard://044def09"
2019-04-10 11:51:45 +03:00
}],
...
}
2019-04-03 10:50:52 +03:00
```
2019-04-10 11:51:45 +03:00
So the communication with the card is working, but there is no key associated with this wallet. Let's create it:
2019-03-23 19:13:02 +03:00
```
2019-05-28 19:47:53 +03:00
> personal.initializeWallet("keycard://044def09")
2019-04-10 11:51:45 +03:00
"tilt ... impact"
2019-03-23 19:13:02 +03:00
```
2019-03-21 12:54:24 +03:00
2019-04-10 11:51:45 +03:00
You should get a list of words, this is your seed so write them down. Your wallet should now be initialized:
```
> personal.listWallets
[{
accounts: [{
address: "0x678b7cd55c61917defb23546a41803c5bfefbc7a",
2019-05-28 19:47:53 +03:00
url: "keycard://044d/m/44'/60'/0'/0/0"
2019-04-10 11:51:45 +03:00
}],
status: "Online",
2019-05-28 19:47:53 +03:00
url: "keycard://044def09"
2019-04-10 11:51:45 +03:00
}]
```
You're all set!
2019-03-20 17:46:36 +03:00
## Usage
1. Start `geth` with the `console` command
2. Check the card's URL by checking `personal.listWallets` :
```
listWallets: [{
status: "Online, can derive public keys",
2019-05-28 19:47:53 +03:00
url: "keycard://a4d73015"
2019-03-20 17:46:36 +03:00
}]
```
3. Open the wallet, you will be prompted for your pairing password, then PIN:
```
2019-05-28 19:47:53 +03:00
personal.openWallet("keycard://a4d73015")
2019-03-20 17:46:36 +03:00
```
4. Check that creation was successful by typing e.g. `personal` . Then use it like a regular wallet.
## Known issues
2019-04-10 11:51:45 +03:00
* Starting geth with a valid card seems to make firefox crash.
* PCSC version 4.4 should work, but is currently untested